Bleeping Computer

whoAMI attacks give hackers code execution on Amazon EC2 instances

Security researchers discovered a name confusion attack that allows access to an Amazon Web Services account to anyone that publishes an Amazon Machine Image (AMI) with a specific name. Dubbed "whoAMI ...
TechRadar

AWS S3 feature abused by ransomware hackers to encrypt storage buckets

Attackers access storage buckets with exposed AWS keys The files are then encrypted and scheduled for deletion after a week Halycon says it observed at least two victims being attacked this way ...